tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,170 Commits 6 Branches 20 Tags 99 MiB
Commit Graph

1845 Commits

Author SHA1 Message Date
Damien Miller ee11625d43 - markus@cvs.openbsd.org 2001/12/09 18:45:56 
[auth2.c auth2-chall.c auth.h]
     add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions,
     fixes memleak.
 2001-12-21 12:42:34 +11:00
Damien Miller 3afe375fd2 - stevesk@cvs.openbsd.org 2001/12/08 17:49:28 
[channels.c pathnames.h]
     use only one path to X11 UNIX domain socket vs. an array of paths
     to try.  report from djast@cs.toronto.edu.  ok markus@
 2001-12-21 12:39:51 +11:00
Damien Miller faf2f6483a - (djm) Add option to gnome-ssh-askpass to stop it from grabbing the X 
server. I have found this necessary to avoid server hangs with X input
   extensions (e.g. kinput2). Enable by setting the environment variable
   "GNOME_SSH_ASKPASS_NOGRAB"
 2001-12-21 10:28:07 +11:00
Kevin Steves 366298c696 - (stevesk) OpenBSD CVS sync X11 localhost display 
- stevesk@cvs.openbsd.org 2001/11/29 14:10:51
     [channels.h channels.c session.c]
     sshd X11 fake server will now listen on localhost by default:
     $ echo $DISPLAY
     localhost:12.0
     $ netstat -an|grep 6012
     tcp        0      0  127.0.0.1.6012         *.*                    LISTEN
     tcp6       0      0  ::1.6012               *.*                    LISTEN
     sshd_config gatewayports=yes can be used to revert back to the old
     behavior.  will control this with another option later.  ok markus@
   - stevesk@cvs.openbsd.org 2001/12/19 08:43:11
     [includes.h session.c]
     handle utsname.nodename case for FamilyLocal X authorization; ok markus@
 2001-12-19 17:58:01 +00:00
Ben Lindstrom 73f57be500 - stevesk@cvs.openbsd.org 2001/12/06 18:20:32 
[channels.c]
     disable nagle for X11 fake server and client TCPs.  from netbsd.
     ok markus@
 2001-12-07 17:28:34 +00:00
Ben Lindstrom ccd8d07b3c - stevesk@cvs.openbsd.org 2001/12/06 18:09:23 
[channels.c session.c]
     strncpy->strlcpy.  remaining strncpy's are necessary.  ok markus@
 2001-12-07 17:26:48 +00:00
Ben Lindstrom e181a4d294 - stevesk@cvs.openbsd.org 2001/12/06 18:02:32 
[channels.c sshconnect.c]
     shutdown(sock, SHUT_RDWR) not needed here; ok markus@
 2001-12-07 17:24:49 +00:00
Ben Lindstrom c97b1affc5 - (bal) PCRE no longer required. Banished from the source along with 
fake-regex.h
 2001-12-07 17:20:47 +00:00
Ben Lindstrom ade03f6bad - markus@cvs.openbsd.org 2001/12/06 13:30:06 
[servconf.c servconf.h sshd.8 sshd.c]
     add -o to sshd, too. ok deraadt@
 - (bal) Minor white space fix up in servconf.c
 2001-12-06 18:22:17 +00:00
Ben Lindstrom 9eab262f1c - markus@cvs.openbsd.org 2001/12/05 16:54:51 
[compat.c match.c match.h]
     make theo and djm happy: bye bye regexp
 2001-12-06 18:06:05 +00:00
Ben Lindstrom ff4a14f809 - markus@cvs.openbsd.org 2001/12/05 15:04:48 
[version.h]
     post 3.0.2
 2001-12-06 18:02:59 +00:00
Ben Lindstrom 1c37c6a518 - deraadt@cvs.openbsd.org 2001/12/05 10:06:12 
[authfd.c authfile.c bufaux.c channels.c compat.c kex.c kexgex.c
      key.c misc.c packet.c servconf.c ssh-agent.c sshconnect2.c
      sshconnect.c sshd.c ssh-dss.c ssh-keygen.c ssh-rsa.c]
     minor KNF
 2001-12-06 18:00:18 +00:00
Ben Lindstrom 3c36bb29ca - itojun@cvs.openbsd.org 2001/12/05 03:56:39 
[auth1.c auth2.c canohost.c channels.c deattack.c packet.c scp.c
      sshconnect2.c]
     make it compile with more strict prototype checking
 2001-12-06 17:55:26 +00:00
Ben Lindstrom f8f065bc75 - itojun@cvs.openbsd.org 2001/12/05 03:50:01 
[clientloop.c serverloop.c sshd.c]
     deal with LP64 printf issue with sig_atomic_t.  from thorpej
 2001-12-06 17:52:16 +00:00
Ben Lindstrom d05487d1db - deraadt@cvs.openbsd.org 2001/12/02 02:08:32 
[sftp-common.c]
     zap };
 2001-12-06 17:50:03 +00:00
Ben Lindstrom 38b951cdb2 - markus@cvs.openbsd.org 2001/12/01 21:41:48 
[session.c sshd.8]
     don't pass user defined variables to /usr/bin/login
 2001-12-06 17:47:47 +00:00
Ben Lindstrom 4a4bd719ea - stevesk@cvs.openbsd.org 2001/11/30 20:39:28 
[ssh.c]
     sscanf() length dependencies are clearer now; can also shrink proto
     and data if desired, but i have not done that.  ok markus@
 2001-12-06 17:45:19 +00:00
Ben Lindstrom 57fe5b592c - markus@cvs.openbsd.org 2001/11/29 22:08:48 
[auth-rsa.c]
     fix protocol error: send 'failed' message instead of a 2nd challenge
     (happens if the same key is in authorized_keys twice).
     reported Ralf_Meister@genua.de; ok djm@
 2001-12-06 17:41:25 +00:00
Ben Lindstrom 623e4a0b1a - stevesk@cvs.openbsd.org 2001/11/29 19:06:39 
[channels.h]
     remove dead function prototype; ok markus@
 2001-12-06 16:49:57 +00:00
Ben Lindstrom 5e71c54b8c - markus@cvs.openbsd.org 2001/11/22 12:34:22 
[clientloop.c serverloop.c sshd.c]
     volatile sig_atomic_t
 2001-12-06 16:48:14 +00:00
Ben Lindstrom 28c603bf43 - stevesk@cvs.openbsd.org 2001/11/22 05:27:29 
[ssh-keyscan.c]
     don't use "\n" in fatal()
 2001-12-06 16:45:10 +00:00
Ben Lindstrom 4e366d5048 - stevesk@cvs.openbsd.org 2001/11/21 18:49:14 
[ssh-keygen.1]
     more on passphrase construction; ok markus@
 2001-12-06 16:43:21 +00:00
Ben Lindstrom 4cbc181983 - markus@cvs.openbsd.org 2001/11/21 15:51:24 
[key.c]
     mem leak
 2001-12-06 16:41:41 +00:00
Ben Lindstrom 70a290c5f7 - mpech@cvs.openbsd.org 2001/11/19 19:02:16 
[deattack.c radix.c]
     kill more registers
     millert@ ok
 2001-12-06 16:39:56 +00:00
Ben Lindstrom 11f790bbb1 - stevesk@cvs.openbsd.org 2001/11/19 18:40:46 
[ssh-agent.1]
     clarify/state that private keys are not exposed to clients using the
     agent; ok markus@
 2001-12-06 16:37:51 +00:00
Ben Lindstrom d84df989db - markus@cvs.openbsd.org 2001/11/19 11:20:21 
[sshd.c]
     fd leak on HUP; ok stevesk@
 2001-12-06 16:35:40 +00:00
Ben Lindstrom 65366a8c76 - stevesk@cvs.openbsd.org 2001/11/17 19:14:34 
[auth2.c auth.c readconf.c servconf.c ssh-agent.c ssh-keygen.c]
     enum/int type cleanup where it made sense to do so; ok markus@
 2001-12-06 16:32:47 +00:00
Ben Lindstrom eaffb9d6b6 - markus@cvs.openbsd.org 2001/11/16 12:46:13 
[ssh-keyscan.c]
     handle empty lines instead of dumping core; report from sha@sha-1.net
 2001-12-06 16:28:19 +00:00
Ben Lindstrom 0795848def - deraadt@cvs.openbsd.org 2001/11/14 20:45:08 
[sshd.c]
     errno saving wrapping in a signal handler
 2001-12-06 16:19:01 +00:00
Tim Rice fe1d100ffd [contrib/cygwin/README, openbsd-compat/bsd-cygwin_util.c, 
openbsd-compat/bsd-cygwin_util.h, openbsd-compat/daemon.c]
Allow SSHD to install as service under WIndows 9x/Me
[configure.ac] Fix to allow linking against PCRE on Cygwin
Patches by Corinna Vinschen <vinschen@redhat.com>
 2001-11-26 17:19:43 -08:00
Damien Miller f7c6f95682 Release 2001-11-15 23:16:50 +11:00
Damien Miller efdc1f179d - (djm) Fix IPv4 default in ssh-keyscan. Spotted by Dan Astoorian 
<djast@cs.toronto.edu> Fix from markus@
 2001-11-15 08:40:45 +11:00
Damien Miller 353f608740 - (djm) Bump RPM package versions 2001-11-14 00:05:57 +11:00
Damien Miller c3070c8fe0 - markus@cvs.openbsd.org 2001/11/13 02:03:57 
[version.h]
     enter 3.0.1
 2001-11-14 00:05:29 +11:00
Damien Miller 527366ccba - markus@cvs.openbsd.org 2001/11/12 11:17:07 
[servconf.c]
     enable authorized_keys2 again. tested by fries@
 2001-11-14 00:03:14 +11:00
Damien Miller 61b05cfdda - (djm) OpenBSD CVS Sync 
- dugsong@cvs.openbsd.org 2001/11/11 18:47:10
     [auth-krb5.c]
     fix krb5 authorization check. found by <jhawk@MIT.EDU>. from
     art@, deraadt@ ok
 2001-11-14 00:02:10 +11:00
Damien Miller e49d0966b5 - (djm) AIX login{success,failed} changes. Move loginsuccess call to 
do_authenticated. Call loginfailed for protocol 2 failures > MAX like
   we do for protocol 1. Reports from Ralf Wenk <wera0003@fh-karlsruhe.de>,
   K.Wolkersdorfer@fz-juelich.de and others
 2001-11-13 23:46:18 +11:00
Damien Miller 056ca1eb47 - (djm) Fix early (and double) free of remote user when using Kerberos. 
Patch from Simon Wilkinson <simon@sxw.org.uk>
 2001-11-13 11:20:07 +11:00
Damien Miller 726273e129 - (djm) Reorder portable-specific server options so that they come first. 
This should help reduce diff collisions for new server options (as they
   will appear at the end)
 2001-11-12 11:40:11 +11:00
Damien Miller 75413ac499 - markus@cvs.openbsd.org 2001/11/11 13:02:31 
[servconf.c]
     make AuthorizedKeysFile2 fallback to AuthorizedKeysFile if AuthorizedKeysFile is specified.
 2001-11-12 11:14:35 +11:00
Damien Miller 084b8d4ed7 - markus@cvs.openbsd.org 2001/11/10 13:37:20 
[packet.c]
     remove extra debug()
 2001-11-12 11:07:58 +11:00
Damien Miller eacff8533e - markus@cvs.openbsd.org 2001/11/10 13:22:42 
[ssh-rsa.c]
     KNF (unexpand)
 2001-11-12 11:07:35 +11:00
Damien Miller 6a4a4b9290 - markus@cvs.openbsd.org 2001/11/10 13:19:45 
[sshd.c]
     cleanup libwrap support (remove bogus comment, bogus close(), add debug, etc).
 2001-11-12 11:07:11 +11:00
Damien Miller e4a0ff4748 - markus@cvs.openbsd.org 2001/11/09 19:08:35 
[sshd.c]
     remove extra trailing dot from log message; pilot@naughty.monkey.org
 2001-11-12 11:06:54 +11:00
Damien Miller 79faeff2c1 - markus@cvs.openbsd.org 2001/11/09 18:59:23 
[clientloop.c serverloop.c]
     don't memset too much memory, ok millert@
     original patch from jlk@kamens.brookline.ma.us via nalin@redhat.com
 2001-11-12 11:06:32 +11:00
Damien Miller f655207a46 - markus@cvs.openbsd.org 2001/11/08 20:02:24 
[auth.c]
     don't print ROOT in CAPS for the authentication messages, i.e.
     	Accepted publickey for ROOT from 127.0.0.1 port 42734 ssh2
     becomes
     	Accepted publickey for root from 127.0.0.1 port 42734 ssh2
 2001-11-12 11:06:06 +11:00
Damien Miller 705499b248 - markus@cvs.openbsd.org 2001/11/08 17:49:53 
[ssh.1]
     mention setuid root requirements; noted by cnorris@csc.UVic.ca; ok stevesk@
 2001-11-12 11:05:38 +11:00
Damien Miller 637b8ae2d4 - markus@cvs.openbsd.org 2001/11/08 10:51:08 
[readpass.c]
     don't strdup too much data; from gotoh@taiyo.co.jp; ok millert.
 2001-11-12 11:05:20 +11:00
Damien Miller 36f8dd3ed6 - markus@cvs.openbsd.org 2001/11/07 22:53:21 
[channels.h]
     crank c->path to 256 so they can hold a full hostname; dwd@bell-labs.com
 2001-11-12 11:04:54 +11:00
Damien Miller 6fd5b391f0 - markus@cvs.openbsd.org 2001/11/07 22:41:51 
[auth2.c auth-rh-rsa.c]
     unused includes
 2001-11-12 11:04:28 +11:00
Damien Miller 60d8aafcb1 - markus@cvs.openbsd.org 2001/11/07 22:12:01 
[sshd.8]
     s/Keepalive/KeepAlive/; from openbsd@davidkrause.com
 2001-11-12 11:04:05 +11:00
Damien Miller 36e603db86 - markus@cvs.openbsd.org 2001/11/07 22:10:28 
[ssh-dss.c ssh-rsa.c]
     missing free and sync dss/rsa code.
 2001-11-12 11:03:35 +11:00
Damien Miller 9af8c3c226 - markus@cvs.openbsd.org 2001/11/07 21:40:21 
[ssh-rsa.c]
     ssh_rsa_sign/verify: SSH_BUG_SIGBLOB not supported
 2001-11-12 11:03:16 +11:00
Damien Miller 9f64390f41 - markus@cvs.openbsd.org 2001/11/07 16:03:17 
[packet.c packet.h sshconnect2.c]
     pad using the padding field from the ssh2 packet instead of sending
     extra ignore messages. tested against several other ssh servers.
 2001-11-12 11:02:52 +11:00
Damien Miller 1f8dddc927 - markus@cvs.openbsd.org 2001/10/30 20:29:09 
[ssh.1]
     ssh.1
 2001-11-12 11:02:25 +11:00
Damien Miller 91c1847733 - markus@cvs.openbsd.org 2001/10/29 19:27:15 
[sshconnect2.c]
     hostbased: check for client hostkey before building chost
 2001-11-12 11:02:03 +11:00
Damien Miller eb5fec6494 - markus@cvs.openbsd.org 2001/10/25 21:14:32 
[ssh-keygen.1 ssh-keygen.c]
     better docu for fingerprinting, ok deraadt@
 2001-11-12 10:52:44 +11:00
Damien Miller 96507ef535 - markus@cvs.openbsd.org 2001/10/24 19:57:40 
[clientloop.c]
     make ~& (backgrounding) work again for proto v1; add support ~& for v2, too
 2001-11-12 10:52:25 +11:00
Damien Miller 07cd5897f9 - markus@cvs.openbsd.org 2001/10/24 08:51:35 
[clientloop.c ssh.c]
     ignore SIGPIPE early, makes ssh work if agent dies, netbsd-pr via itojun@
 2001-11-12 10:52:03 +11:00
Damien Miller 595bb4f572 - markus@cvs.openbsd.org 2001/10/24 08:41:20 
[ssh.c]
     remove unused
 2001-11-12 10:51:40 +11:00
Damien Miller 00b61645eb - markus@cvs.openbsd.org 2001/10/24 08:41:41 
[sshd.c]
     mention remote port in debug message
 2001-11-12 10:51:23 +11:00
Damien Miller aba690c100 - (djm) Cygwin config patch from Corinna Vinschen <vinschen@redhat.com> 2001-11-12 10:36:21 +11:00
Damien Miller f41d618fec - (djm) Makefile correctness fix from Mark D. Baushke <mdb@juniper.net> 2001-11-12 10:34:22 +11:00
Kevin Steves de77b464c6 - (stevesk) auth-pam.c: use do_pam_authenticate(PAM_DISALLOW_NULL_AUTHTOK) 
if permit_empty_passwd == 0 so null password check cannot be bypassed.
   jayaraj@amritapuri.com OpenBSD bug 2168
 2001-11-09 20:22:16 +00:00
Tim Rice e589a299a1 [ contrib/caldera/openssh.spec contrib/caldera/sshd.init] 
Updates from Raymund Will <ray@caldera.de>
[acconfig.h configure.in] Clean up login checks.
Problem reported by Jim Knoble <jmknoble@pobox.com>
 2001-11-03 11:09:32 -08:00
Damien Miller 14a5c99b5c - (djm) Compat define for OpenSSL < 0.9.6 (No OPENSSL_free) 2001-11-01 09:32:34 +11:00
Damien Miller 12eceb2efc - (djm) Unsmoke drugs: config files should be noreplace. 2001-10-31 10:31:13 +11:00
Damien Miller 1c61324728 - (djm) Redhat RPM spec: remove noreplace from config files, allow IPv6 
by default (can force IPv4 using --define "noipv6 1")
 2001-10-30 22:03:51 +11:00
Tim Rice b89e694b4c [TODO defines.h loginrec.c] Change the references to configure.in 
to configure.ac
 2001-10-29 18:50:39 -08:00
Kevin Steves c3ad02e54b - (stevesk) README: zlib location is http://www.gzip.org/zlib/ 2001-10-28 18:10:22 +00:00
Kevin Steves fe2f4a1e37 - (stevesk) Fix compile problem with PAM password change fix 2001-10-28 17:32:38 +00:00
Damien Miller 092564869a - (djm) Fix for PAM password changes being echoed (from stevesk) 2001-10-28 22:36:55 +11:00
Damien Miller c3aa3dd70c - (djm) Disconnect if no tty and PAM reports password expired 2001-10-28 22:34:52 +11:00
Damien Miller 33cdd9ee7b - (djm) Avoid bug in Solaris PAM libs 2001-10-28 22:33:48 +11:00
Tim Rice ffdf4aa10f [configure.ac] Fixes for ReliantUNIX (don't use libucb) 
Patch by Robert Dahlem <Robert.Dahlem@siemens.com>
 2001-10-27 10:45:36 -07:00
Tim Rice afefd16b6e Fix install: when building outside of source 
tree and using --src=/full_path/to/openssh
Patch by Mark D. Baushke <mdb@juniper.net>
 2001-10-26 17:33:18 -07:00
Ben Lindstrom 9197c59493 - (bal) Set the correct current time in login_utmp_only(). Patch by 
Wayne Davison <wayned@users.sourceforge.net>
 2001-10-26 15:56:55 +00:00
Tim Rice 02cebcd93b Give path given in --with-xxx= for pcre,zlib, and 
tcp-wrappers precedence over system libraries and includes.
Report from Dave Dykstra <dwd@bell-labs.com>
 2001-10-25 10:01:30 -07:00
Ben Lindstrom a0bd44cc49 - (bal) Use VDISABLE if _POSIX_VDISABLE is set in readpassphrase.c. Patch 
by todd@
 2001-10-25 15:02:35 +00:00
Tim Rice 8ad995fd07 Use configure.ac instead of configure.in so older versions of autoconf 
don't even try.
 2001-10-24 21:15:26 -07:00
Ben Lindstrom 3a78c84535 - (bal) Should be 3.0p1 not 3.0p2. Corrected version.h already. 2001-10-24 21:06:07 +00:00
Tim Rice 17b93e5d65 [configure.in] Fix test for broken dirname. Based on patch from 
Dave Dykstra <dwd@bell-labs.com>. Remove un-needed test for zlib.h.
[contrib/caldera/openssh.spec, contrib/redhat/openssh.spec,
contrib/suse/openssh.spec] Update version to match version.h
 2001-10-23 22:36:54 -07:00
Ben Lindstrom 95276711eb - (bal) Added 'PAM_TTY_KLUDGE' to Solaris platform. 2001-10-23 17:14:00 +00:00
Ben Lindstrom ab73b9bd64 - (bal) Updated version to 3.0p1 in preparing for release. 2001-10-23 16:12:54 +00:00
Damien Miller 3a8a5cd5b0 - (djm) Fix fd leak in loginrec.c (ro fd to lastlog was left open). 
Report from Michal Zalewski <lcamtuf@coredump.cx>
 2001-10-22 16:49:22 +10:00
Tim Rice 13aae5ee76 [configure.in] Clean up library testing. 
Add optional PATH to --with-pcre, --with-zlib, --with-tcp-wrappers
based on patch by albert chin (china@thewrittenword.com)

Re-arange AC_CHECK_HEADERS and AC_CHECK_FUNCS for eaiser reading
of patches to configure.in

Replace obsolete AC_STRUCT_ST_BLKSIZE with AC_CHECK_MEMBERS

Add test for broken dirname() on Solaris 2.5.1 by
Dan Astoorian <djast@cs.toronto.edu>

[acconfig.h aclocal.m4 defines.h configure.in]
Better socklen_t patch by albert chin (china@thewrittenword.com)

[scp.c]
Replace obsolete HAVE_ST_BLKSIZE with HAVE_STRUCT_STAT_ST_BLKSIZE

[Makefile.in] When running make in top level, always do make in openbsd-compat
patch by Dave Dykstra <dwd@bell-labs.com>
 2001-10-21 17:53:58 -07:00
Ben Lindstrom f2366b5a7d - (bal) Fixed up init.d symlink issue and piddir stuff. Patches by 
Zoran Milojevic <Zoran.Milojevic@SS8.com> and j.petersen@msh.de
 2001-10-19 20:36:23 +00:00
Ben Lindstrom 7a97339359 - (bal) Minor bug fix in contrib/solaris/opensshd.in .. $etcdir was not 
set right.
 2001-10-12 21:52:39 +00:00
Ben Lindstrom 8b5ba1c39a - (bal) First wave of contrib/solaris/ package upgrades. Still more 
work needs to be done, but it is a 190% better then the stuff we
    had before!
 2001-10-12 20:30:52 +00:00
Damien Miller 4a820ea750 - (djm) Cleanup sshpty.c a little 2001-10-12 19:15:48 +10:00
Damien Miller 7c734056f4 - (djm) Clean some autoconf-2.52 junk when doing "make distclean" 2001-10-12 19:15:27 +10:00
Damien Miller 5f01280c79 - (djm) "make veryclean" fix from Tom Holroyd <tomh@po.crl.go.jp> 2001-10-12 12:04:04 +10:00
Damien Miller 164a7f42f9 - markus@cvs.openbsd.org 2001/10/11 15:24:00 
[clientloop.c]
     clear select masks if we return before calling select().
 2001-10-12 11:36:09 +10:00
Damien Miller 0585d51a52 - markus@cvs.openbsd.org 2001/10/11 13:45:21 
[session.c]
     delay detach of session if a channel gets closed but the child is
     still alive.  however, release pty, since the fd's to the child are
     already closed.
 2001-10-12 11:35:50 +10:00
Damien Miller 3ec2759ad4 - (djm) OpenBSD CVS Sync 
- markus@cvs.openbsd.org 2001/10/10 22:18:47
     [channels.c channels.h clientloop.c nchan.c serverloop.c]
     [session.c session.h]
     try to keep channels open until an exit-status message is sent.
     don't kill the login shells if the shells stdin/out/err is closed.
     this should now work:
     ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
 2001-10-12 11:35:04 +10:00
Ben Lindstrom 4e088e4de0 - (bal) seed_init() and seed_rng() required in ssh-keyscan.c 2001-10-10 20:45:43 +00:00
Ben Lindstrom 926ce58d3b - (bal) removed two unsed headers in openbsd-compat/bsd-misc.c 2001-10-10 20:38:55 +00:00
Damien Miller 52b77beb65 - markus@cvs.openbsd.org 2001/10/09 21:59:41 
[channels.c channels.h serverloop.c session.c session.h]
     simplify session close: no more delayed session_close, no more blocking wait() calls.
 2001-10-10 15:14:37 +10:00
Damien Miller c71f4e40b6 - markus@cvs.openbsd.org 2001/10/09 19:51:18 
[serverloop.c]
     close all channels if the connection to the remote host has been closed,
     should fix sshd's hanging with WCHAN==wait
 2001-10-10 15:08:36 +10:00
Damien Miller ae45246696 - markus@cvs.openbsd.org 2001/10/09 19:32:49 
[session.c]
     stat subsystem command before calling do_exec, and return error to client.
 2001-10-10 15:08:06 +10:00
Damien Miller 139d4cd908 - markus@cvs.openbsd.org 2001/10/09 10:12:08 
[session.c]
     chdir $HOME after krb_afslog(); from bbense@networking.stanford.edu
 2001-10-10 15:07:44 +10:00
Damien Miller 7ea6f204b6 - markus@cvs.openbsd.org 2001/10/08 16:15:47 
[sshconnect.c]
     use correct family for -b option
 2001-10-10 15:04:41 +10:00
Damien Miller d3c04b90e4 - markus@cvs.openbsd.org 2001/10/08 11:48:57 
[channels.c]
     better debug
 2001-10-10 15:04:20 +10:00
Damien Miller 4623a75462 - markus@cvs.openbsd.org 2001/10/07 17:49:40 
[channels.c channels.h]
     avoid possible FD_ISSET overflow for channels established
     during channnel_after_select() (used for dynamic channels).
 2001-10-10 15:03:58 +10:00
Damien Miller 058655cced - markus@cvs.openbsd.org 2001/10/07 10:29:52 
[authfile.c]
     grammer; Matthew_Clarke@mindlink.bc.ca
 2001-10-10 15:03:36 +10:00
Damien Miller 59d9fb9e55 - markus@cvs.openbsd.org 2001/10/06 11:18:19 
[sshconnect1.c sshconnect2.c sshconnect.c]
     unify hostkey check error messages, simplify prompt.
 2001-10-10 15:03:11 +10:00
Damien Miller 9c75142917 - markus@cvs.openbsd.org 2001/10/06 00:36:42 
[session.c]
     fix typo in error message, sync with do_exec_nopty
 2001-10-10 15:02:46 +10:00
Damien Miller e398004f6c - markus@cvs.openbsd.org 2001/10/06 00:14:50 
[sshconnect.c]
     remove unused argument
 2001-10-10 15:02:03 +10:00
Damien Miller 8c3902afde - markus@cvs.openbsd.org 2001/10/04 15:12:37 
[serverloop.c]
     client_alive_check cleanup
 2001-10-10 15:01:40 +10:00
Damien Miller af5f2e641c - markus@cvs.openbsd.org 2001/10/04 15:05:40 
[channels.c serverloop.c]
     comment out bogus conditions for selecting on connection_in
 2001-10-10 15:01:16 +10:00
Damien Miller af3030f709 - markus@cvs.openbsd.org 2001/10/04 14:34:16 
[key.c]
     call OPENSSL_free() for memory allocated by openssl; from chombier@mac.com
 2001-10-10 15:00:49 +10:00
Ben Lindstrom f16c81f900 - (bal) ssh-copy-id corrected permissions for .ssh/ and authorized_keys. 
Prompted by Matthew Vernon <matthew@sel.cam.ac.uk>
 2001-10-08 01:54:24 +00:00
Ben Lindstrom 4c90149c50 - (bal) AES works under Cray, no more hack. 2001-10-06 00:08:09 +00:00
Ben Lindstrom 8bceffb0c3 - (bal) nchan2.ms resync. BSD License applied. 2001-10-04 21:16:57 +00:00
Ben Lindstrom c3e49e7b31 - markus@cvs.openbsd.org 2001/10/03 10:01:20 
[auth.c]
     use realpath() for homedir, too. from jinmei@isl.rdc.toshiba.co.jp
 2001-10-03 17:55:26 +00:00
Ben Lindstrom 1bae404457 - stevesk@cvs.openbsd.org 2001/10/02 22:56:09 
[sshd.c]
     #include "channels.h" for channel_set_af()
 2001-10-03 17:46:39 +00:00
Ben Lindstrom 569f88de04 - djm@cvs.openbsd.org 2001/10/02 08:38:50 
[ssh-add.c]
     return non-zero exit code on error; ok markus@
 2001-10-03 17:43:01 +00:00
Ben Lindstrom 3cecc9a41f - markus@cvs.openbsd.org 2001/10/01 21:51:16 
[readconf.c readconf.h ssh.1 sshconnect.c]
     add NoHostAuthenticationForLocalhost; note that the hostkey is
     now check for localhost, too.
 2001-10-03 17:39:38 +00:00
Ben Lindstrom 908afed17f - markus@cvs.openbsd.org 2001/10/01 21:38:53 
[channels.c channels.h ssh.c sshd.c]
     remove ugliness; vp@drexel.edu via angelos
 2001-10-03 17:34:59 +00:00
Ben Lindstrom 3e45e4cd00 - markus@cvs.openbsd.org 2001/10/01 08:06:28 
[scp.c]
     skip filenames containing \n; report jdamery@chiark.greenend.org.uk
     and matthew@debian.org
 2001-10-03 17:30:58 +00:00
Ben Lindstrom 83f07d1954 - markus@cvs.openbsd.org 2001/09/28 15:46:29 
[ssh.c]
     bug: read user config first; report kaukasoi@elektroni.ee.tut.fi
 2001-10-03 17:22:29 +00:00
Ben Lindstrom 1af4d3bb70 - djm@cvs.openbsd.org 2001/09/28 12:07:09 
[ssh-keygen.c]
     bzero private key after loading to smartcard; ok markus@
 2001-10-03 17:18:37 +00:00
Ben Lindstrom 6149a6c57f - camield@cvs.openbsd.org 2001/09/27 17:53:24 
[sshd.8]
     don't talk about compile-time options
     ok markus@
 2001-10-03 17:15:32 +00:00
Ben Lindstrom bdfb4df08c - markus@cvs.openbsd.org 2001/09/27 15:31:17 
[auth2.c auth2-chall.c sshconnect1.c]
     typos; from solar
 2001-10-03 17:12:43 +00:00
Ben Lindstrom ae3de4b39e - markus@cvs.openbsd.org 2001/09/27 11:59:37 
[packet.c]
     missing called=1; chombier@mac.com
 2001-10-03 17:10:17 +00:00
Ben Lindstrom 96f8d143a7 - markus@cvs.openbsd.org 2001/09/27 11:58:16 
[compress.c]
     mem leak; chombier@mac.com
 2001-10-03 17:07:47 +00:00
Ben Lindstrom 9b023ed2a2 - (bal) CVS ID fix up in version.h 2001-10-03 17:03:54 +00:00
Kevin Steves 5217265349 - (stevesk) loginrec.c: fix type conversion problems exposed when using 
64-bit off_t.
 2001-10-02 00:29:00 +00:00
Ben Lindstrom 819f1bef5c 20010929 
- (bal) move reading 'config.h' up higher.  Patch by albert chin
   <china@thewrittenword.com)
 2001-09-29 14:27:00 +00:00
Damien Miller bccb5a9338 - (djm) Update spec files for new x11-askpass 2001-09-28 20:03:25 +10:00
Damien Miller 3ff36d6ce2 - (djm) OpenBSD CVS sync: 
- djm@cvs.openbsd.org 2001/09/28 09:49:31
     [scard.c]
     Fix segv when smartcard communication error occurs during key load.
     ok markus@
 2001-09-28 19:51:54 +10:00
Kevin Steves a0957d6898 - (stevesk) session.c: declare do_pre_login() before use 
wayned@users.sourceforge.net
 2001-09-27 19:50:26 +00:00
Damien Miller 5f4b10088f - (djm) Avoid bad and unportable sprintf usage in compat code 2001-09-25 22:21:52 +10:00
Damien Miller e8bb450af9 - (djm) Add AC_SYS_LARGEFILE configure test 2001-09-25 16:39:35 +10:00
Damien Miller 16fcade16b - (djm) Sync $sysconfdir/moduli 2001-09-25 13:06:18 +10:00
Damien Miller 964fed54cd - (djm) Pull in auth-krb5.c from OpenBSD CVS. NB. it is not currently used. 2001-09-25 12:58:23 +10:00
Ben Lindstrom 8b16c0e67a - (bal) Updated all *.specs for 2.9.9p1 and updated version.h 2001-09-24 23:15:15 +00:00
Ben Lindstrom 40a0d20913 - (bal) Removed 'extern int optopt;' since it is dead wood. 2001-09-24 22:04:02 +00:00
Ben Lindstrom 5ccf63a974 - (bal) updated ssh.c to mirror minor getopts 'extern int' formating done 
by stevesk@
 2001-09-24 20:00:10 +00:00
Ben Lindstrom bffa1cb7f6 - markus@cvs.openbsd.org 2001/09/23 09:58:13 
[LICENCE]
     new rijndael implementation
 2001-09-23 13:58:38 +00:00
Ben Lindstrom b85544d717 <grumble> Editing ChangeLog in the wrong directory. 
- markus@cvs.openbsd.org 2001/09/23 11:09:13
     [authfile.c]
     relax permission check for private key files.
 2001-09-23 13:54:57 +00:00
Ben Lindstrom 15da033b34 - mouring@cvs.openbsd.org 2001/09/20 20:57:51 
[sshd_config]
     CheckMail removed.  OKed stevesk@
 2001-09-20 23:15:44 +00:00
Ben Lindstrom f558cf6580 - markus@cvs.openbsd.org 2001/09/20 13:50:40 
[compat.c compat.h ssh.c]
     bug compat: request a dummy channel for -N (no shell) sessions +
     cleanup; vinschen@redhat.com
 2001-09-20 23:13:49 +00:00
Ben Lindstrom 1bc3bdb1c2 - markus@cvs.openbsd.org 2001/09/20 13:46:48 
[auth2.c]
     key_read returns now -1 or 1
 2001-09-20 23:11:26 +00:00
Ben Lindstrom 406b4f0f33 - stevesk@cvs.openbsd.org 2001/09/20 00:15:54 
[sshd.8]
     fix ClientAliveCountMax
 2001-09-20 23:09:16 +00:00
Kevin Steves 50abba560c - (stevesk) sun_len, SUN_LEN() configure stuff no longer required 2001-09-20 19:43:41 +00:00
Tim Rice 1ce8f0c3e5 - (tim) [scard/Makefile.in] Don't strip the Java binary 2001-09-20 11:39:35 -07:00
Ben Lindstrom 84a6bfba15 - (bal) openbsd-compat/vis.[ch] is dead wood. Removed. 2001-09-20 02:07:50 +00:00
Ben Lindstrom 03598a1c23 - stevesk@cvs.openbsd.org 2001/09/19 21:41:57 
[sshd.8]
     don't advertise -V in usage; ok markus@
 2001-09-20 01:07:57 +00:00
Ben Lindstrom dfd1850398 - stevesk@cvs.openbsd.org 2001/09/19 21:04:53 
[sshd.8]
     missing -t in usage
 2001-09-20 01:06:08 +00:00
Ben Lindstrom b1d822c311 - stevesk@cvs.openbsd.org 2001/09/19 19:35:30 
[authfd.c]
     use sizeof addr vs. SUN_LEN(addr) for sockaddr_un.  Stevens
     blesses this and we do it this way elsewhere.  this helps in
     portable because not all systems have SUN_LEN() and
     sockaddr_un.sun_len.  ok markus@
 2001-09-20 01:03:31 +00:00
Ben Lindstrom 2b7a0e953e - stevesk@cvs.openbsd.org 2001/09/19 19:24:19 
[readconf.c readconf.h scp.c sftp.c ssh.1]
     add ClearAllForwardings ssh option and set it in scp and sftp; ok
     markus@
 2001-09-20 00:57:55 +00:00
Ben Lindstrom 309f3d1d9c - markus@cvs.openbsd.org 2001/09/19 13:23:29 
[key.c]
     key_read() now returns -1 on type mismatch, too
 2001-09-20 00:55:53 +00:00
Ben Lindstrom 20daef753d - markus@cvs.openbsd.org 2001/09/19 10:08:51 
[sshd.8]
     command=xxx applies to subsystem now, too
 2001-09-20 00:54:01 +00:00
Kevin Steves 871f662cb6 - (stevesk) nchan.c: we use X/Open Sockets on HP-UX now so shutdown(2) 
returns ENOTCONN vs. EINVAL for socket not connected; remove EINVAL
   check. ok Lutz Jaenicke
 2001-09-18 16:08:24 +00:00
Ben Lindstrom cc7aafc7a4 - stevesk@cvs.openbsd.org 2001/09/17 23:56:07 
[scp.1]
     missing -B in usage string
 2001-09-18 05:56:57 +00:00
Ben Lindstrom 3b4d42c240 - markus@cvs.openbsd.org 2001/09/17 21:09:47 
[compat.c]
     more versions suffering the SSH_BUG_DEBUG bug;
     3.0.x reported by dbutts@maddog.storability.com
 2001-09-18 05:55:10 +00:00
Ben Lindstrom 6d218f404f - markus@cvs.openbsd.org 2001/09/17 21:04:02 
[channels.c serverloop.c]
     don't send fake dummy packets on CR (\r)
     bugreport from yyua@cs.sfu.ca via solar@@openwall.com
 2001-09-18 05:53:12 +00:00
Ben Lindstrom 944c4f0bda - markus@cvs.openbsd.org 2001/09/17 20:52:47 
[channels.c channels.h clientloop.c]
     try to fix agent-forwarding-backconnection-bug, as seen on HPUX,
     for example; with Lutz.Jaenicke@aet.TU-Cottbus.DE,
 2001-09-18 05:51:13 +00:00
Ben Lindstrom 99a30f11c2 - markus@cvs.openbsd.org 2001/09/17 20:50:22 
[key.c ssh-keygen.c]
     better error handling if you try to export a bad key to ssh.com
 2001-09-18 05:49:14 +00:00
Ben Lindstrom 6a33763332 - stevesk@cvs.openbsd.org 2001/09/17 20:38:09 
[sftp.1 sftp.c]
     cleanup and document -1, -s and -S; ok markus@
 2001-09-18 05:47:32 +00:00
Ben Lindstrom a2fec90e05 - markus@cvs.openbsd.org 2001/09/17 20:22:14 
[scard.c]
     never keep a connection to the smartcard open.
     allows ssh-keygen -D U while the agent is running; report from jakob@
 2001-09-18 05:45:44 +00:00
Ben Lindstrom 9e0ddd4379 - stevesk@cvs.openbsd.org 2001/09/17 19:27:15 
[kexdh.c kexgex.c key.c key.h ssh-dss.c ssh-keygen.c ssh-rsa.c]
     u_char*/char* cleanup; ok markus
 2001-09-18 05:41:19 +00:00
Ben Lindstrom 1e24324164 - stevesk@cvs.openbsd.org 2001/09/17 17:57:57 
[scp.1 scp.c sftp.1 sftp.c]
      add -Fssh_config option; ok markus@
 2001-09-18 05:38:44 +00:00
Ben Lindstrom 033e4557c0 - (bal) LICENCE update. Has not been done in a while. 2001-09-18 05:36:27 +00:00
Damien Miller f2bd06c21e - (djm) Make smartcard support conditional in Redhat RPM spec 2001-09-18 15:33:07 +10:00
Damien Miller 7948d93173 - (djm) Specify --datadir in RPM spec files so smartcard applet gets 
put somewhere sane. Add Ssh.bin to manifest.
 2001-09-18 15:12:10 +10:00
Damien Miller d97c2ceed1 - (djm) More makefile infrastructre for smartcard support, also based 
on Ben's work
 2001-09-18 15:06:21 +10:00
Damien Miller ff5f47e230 - (djm) Avoid warning on BSDgetopt 2001-09-18 15:05:20 +10:00
Damien Miller ffbe69890d - (djm) Revert setgroups call, it causes problems on OS-X 2001-09-18 14:03:03 +10:00
Damien Miller 85de580adc - (djm) Configure support for smartcards 2001-09-18 14:01:11 +10:00
Tim Rice a4f7ae1a35 - (tim) [includes.h openbsd-compat/getopt.c openbsd-compat/getopt.h] 
rename getopt() to BSDgetopt() to keep form conflicting with
	 system getopt().
	 [Makefile.in configure.in] disable filepriv until I can add
	 missing procpriv calls.
 2001-09-17 14:34:33 -07:00
Damien Miller 01ebad06db - (djm) x11-ssh-askpass-1.2.4 in RPM spec, revert workarounds 2001-09-17 15:07:23 +10:00
Ben Lindstrom 37e41c9019 - markus@cvs.openbsd.org 2001/09/16 14:46:54 
[session.c]
      calls krb_afslog() after setting $HOME; mattiasa@e.kth.se; fixes
      pr 1943b
 2001-09-16 22:17:15 +00:00
Damien Miller 0b9278e923 - (djm) Workaround XFree breakage in RPM spec file 2001-09-16 17:13:45 +10:00
Damien Miller 426d6bdc00 I really should commit these in sync with the actual changes 2001-09-16 17:13:11 +10:00
Damien Miller ebf989e601 - (djm) Clear supplemental groups at sshd start to prevent them from 
being propogated to random PAM modules. Based on patch from Redhat via
   Pekka Savola <pekkas@netcore.fi>
 2001-09-15 21:12:49 +10:00
Damien Miller ba6f9f9e49 - (djm) Redhat initscript config sanity checking from Pekka Savola 
<pekkas@netcore.fi>
 2001-09-15 21:03:10 +10:00
Damien Miller 0c217b74e2 C - (djm) Redhat spec file cleanups from Pekka Savola <pekkas@netcore.fi> and 
Redhat
VS: ----------------------------------------------------------------------
 2001-09-15 21:01:41 +10:00
Damien Miller 69e00a18a5 - (djm) Sync scard/ stuff 2001-09-15 20:58:46 +10:00
Damien Miller 599d8eba16 - (djm) Make do_pre_login static to avoid prototype #ifdef hell 2001-09-15 12:25:53 +10:00
Ben Lindstrom 23124eab3b - markus@cvs.openbsd.org 2001/09/14 
[sshd.c]
     typo
 2001-09-14 23:14:25 +00:00
Ben Lindstrom b09f6b5b02 - markus@cvs.openbsd.org 2001/09/14 
[session.c]
     command=xxx overwrites subsystems, too
 2001-09-14 23:12:07 +00:00
Ben Lindstrom d5e1c04c00 - markus@cvs.openbsd.org 2001/09/13 
[rijndael.c rijndael.h]
     missing $OpenBSD
 2001-09-14 23:09:29 +00:00
Ben Lindstrom 319fc7353c I was promised that this does not need to have endness fix up by Markus. 
So I will blindly trust him. =)

   - markus@cvs.openbsd.org 2001/08/23 11:31:59
     [cipher.c cipher.h]
     switch to the optimised AES reference code from
     http://www.esat.kuleuven.ac.be/~rijmen/rijndael/rijndael-fst-3.0.zip
 2001-09-14 02:47:33 +00:00
Ben Lindstrom 4213c559ef - stevesk@cvs.openbsd.org 2001/09/12 18:18:25 
[scp.c]
     don't forward agent for non third-party copies; ok markus@
 2001-09-12 18:45:09 +00:00
Ben Lindstrom 594e203894 - deraadt@cvs.openbsd.org 2001/09/05 06:23:07 
[scp.1 sftp.1 ssh.1 ssh-agent.1 sshd.8 ssh-keygen.1 ssh-keyscan.1]
     avoid first person in manual pages
 2001-09-12 18:35:30 +00:00
Ben Lindstrom edc0cf26d1 - stevesk@cvs.openbsd.org 2001/09/03 20:58:33 
[readconf.c readconf.h ssh.c]
     fatal() for nonexistent -Fssh_config. ok markus@
 2001-09-12 18:32:20 +00:00
Ben Lindstrom 7d19996201 - markus@cvs.openbsd.org 2001/08/31 11:46:39 
[sshconnect2.c]
     disable kbd-interactive if we don't get
     SSH2_MSG_USERAUTH_INFO_REQUEST messages
 2001-09-12 18:29:00 +00:00
Ben Lindstrom 520b55c8c4 - markus@cvs.openbsd.org 2001/08/30 22:22:32 
[ssh-keyscan.c]
     do not pass pointers to longjmp; fix from wayne@blorf.net
 2001-09-12 18:05:05 +00:00
Ben Lindstrom d71ba5771b - stevesk@cvs.openbsd.org 2001/08/30 20:36:34 
[auth-options.c sshd.8]
     validate ports for permitopen key file option. add host/port
     alternative syntax for IPv6. ok markus@
 2001-09-12 18:03:31 +00:00
Ben Lindstrom 62c25a43db - stevesk@cvs.openbsd.org 2001/08/30 16:04:35 
[readconf.c ssh.1]
     validate ports for LocalForward/RemoteForward.
     add host/port alternative syntax for IPv6 (like -L/-R).
     ok markus@
 2001-09-12 18:01:59 +00:00
Ben Lindstrom 6e69d532dc - naddy@cvs.openbsd.org 2001/08/30 15:42:36 
[ssh.1]
     add -D to synopsis line; ok markus@
 2001-09-12 17:59:59 +00:00
Ben Lindstrom 60d82be9f3 - stevesk@cvs.openbsd.org 2001/08/29 23:39:40 
[ssh.1 sshd.8]
     additional documentation for GatewayPorts; ok markus@
 2001-09-12 17:58:15 +00:00
Ben Lindstrom 1a1747172e - stevesk@cvs.openbsd.org 2001/08/29 23:27:23 
[ssh.c]
     validate ports for -L/-R; ok markus@
 2001-09-12 17:56:15 +00:00
Ben Lindstrom 19ceb17040 - stevesk@cvs.openbsd.org 2001/08/29 23:13:10 
[ssh.1 ssh.c]
     document -D and DynamicForward; ok markus
 2001-09-12 17:54:24 +00:00
Ben Lindstrom 6f672c0954 - stevesk@cvs.openbsd.org 2001/08/29 23:02:21 
[sshd.8]
     add text about -u0 preventing DNS requests; ok markus@
 2001-09-12 17:51:55 +00:00
Ben Lindstrom 5fccbc2339 - markus@cvs.openbsd.org 2001/08/29 20:44:03 
[scp.c]
     clear the malloc'd buffer, otherwise source() will leak malloc'd
     memory; ok theo@
 2001-09-12 17:49:48 +00:00
Ben Lindstrom 14f31ab947 - markus@cvs.openbsd.org 2001/08/28 15:39:48 
[ssh.1 ssh.c]
     allow: ssh -F configfile host
 2001-09-12 17:48:04 +00:00
Ben Lindstrom 525a09389e - markus@cvs.openbsd.org 2001/08/28 09:51:26 
[readconf.c]
     don't set DynamicForward unless Host matches
 2001-09-12 17:35:27 +00:00